N.B. this could be fixed, if we wanted to pull in something like iconv.
In addition, you should beware of Cleartext-Password when using SQL;
-any password character not in safe-characters will be encoded as a hex
+any password character not in safe_characters will be encoded as a hex
number, e.g. =20.
Password changes over EAP
# Characters that will not be encoded by the %{encode}
# xlat function.
#
- safe-characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /"
+ safe_characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /"
}
}
# Set to 'yes' to read radius clients from the database ('nas' table)
- # Clients will ONLY be read on server startup. For performance
- # and security reasons, finding clients via SQL queries CANNOT
- # be done "live" while the server is running.
+ # Clients will ONLY be read on server startup.
# read_clients = yes
# Table to keep radius client info
# Safe characters list for sql queries. Everything else is replaced
# with their mime-encoded equivalents.
# The default list should be ok
- #safe-characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /"
+ #safe_characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /"
#######################################################################
# Query config: Username
# Safe characters list for sql queries. Everything else is replaced
# with their mime-encoded equivalents.
# The default list should be ok
-#safe-characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /"
+#safe_characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /"
#######################################################################
# Query config: Username
# Safe characters list for sql queries. Everything else is replaced
# with their mime-encoded equivalents.
# The default list should be ok
- #safe-characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /"
+ #safe_characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /"
#######################################################################
# Connection config
# Safe characters list for sql queries. Everything else is replaced
# with their mime-encoded equivalents.
# The default list should be ok
- # safe-characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /"
+ # safe_characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /"
#######################################################################
# Query config: Username
# Safe characters list for sql queries. Everything else is replaced
# with their mime-encoded equivalents.
# The default list should be ok
- #safe-characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /"
+ #safe_characters = "@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_: /"
#######################################################################
# Query config: Username
}
/**
- * @brief Equivalent to the old safe-characters functionality in rlm_sql
+ * @brief Equivalent to the old safe_characters functionality in rlm_sql
*
* @verbatim Example: "%{escape:<img>foo.jpg</img>}" == "=60img=62foo.jpg=60=/img=62" @endverbatim
*/
{"simul_verify_query", PW_TYPE_STRING_PTR,
offsetof(rlm_sql_config_t,simul_verify_query), NULL, ""},
#endif
- {"safe-characters", PW_TYPE_STRING_PTR | PW_TYPE_DEPRECATED,
+ {"safe_characters", PW_TYPE_STRING_PTR | PW_TYPE_DEPRECATED,
offsetof(rlm_sql_config_t,allowed_chars), NULL, NULL},
{"safe_characters", PW_TYPE_STRING_PTR,
offsetof(rlm_sql_config_t,allowed_chars), NULL,